Unix Software

dlz (dynamically loadable zones) is a patch for bind version 9 that simplifies bind administration and reduces memory usage and startup time. dlz allows you to store your zone data in a database. unlike using scripts, the changes in your database are immediately reflected in bind's response to dns queries, so there is no need to reload or restart bind. you see, bind "dynamically loads" the "zone" data it needs to answer a query from the database.

xdialog is designed to be a drop in replacement for the "dialog" or "cdialog" programs. it converts any terminal based program into a program with an x-windows interface. the dialogs are easier to see and use while adding even more functionalities (e.g. with the treeview, the file selector, the edit box, the range box, the help button/box). because xdialog uses gtk+, it will also match your desktop theme.

aggregate takes a list of prefixes in conventional format on stdin, and performs two optimisations to reduce the length of the prefix list. it removes any supplied prefixes which are supurfluous because they are already included in another supplied prefix (e.g., 203.97.2.0/24 would be removed if 203.97.0.0/17 was also supplied), and identifies adjacent prefixes that can be combined under a single, shorter-length prefix (e.g., 203.97.2.0/24 and 203.97.3.0/24 can be combined into the single prefix 203.97.2.0/23).

apan, advanced performance addon for nagios is a tool for integrating nagios with rrd-tool. the purpose is to make it easy to collect statistics from different service-checks in nagios and to view it graphically via a web-interface.

arping is an arp level ping utility. it's good for finding out if an ip is taken before you have routing to that subnet. it can also ping mac addresses directly. a rewrite that supports libnet 1.1.x is included.

gnu aspell is a free and open source spell checker designed to eventually replace ispell. it can either be used as a library or as an independent spell checker. its main feature is that it does a superior job of suggesting possible replacements for a misspelled word than just about any other spell checker out there for the english language. unlike ispell, aspell can also easily check documents in utf-8 without having to use a special dictionary. aspell will also do its best to respect the current locale setting. other advantages over ispell include support for using multiple dictionaries at once and intelligently handling personal dictionaries when more than one aspell process is open at once.

balance is our surprisingly successful load balancing solution being a simple but powerful generic tcp proxy with round robin load balancing and failover mechanisms. its behaviour can be controlled at runtime using a simple command line syntax.

bind (berkeley internet name domain) is an implementation of the domain name system (dns) protocols and provides an openly redistributable reference implementation of the major components of the domain name system

cacti is a complete network graphing solution designed to harness the power of rrdtool's data storage and graphing functionality. cacti provides a fast poller, advanced graph templating, multiple data acquisition methods, and user management features out of the box. all of this is wrapped in an intuitive, easy to use interface that makes sense for lan-sized installations up to complex networks with hundreds of devices.

my calendar is a lightweight, easy-to-use web calendar. there is also an included email script that you can have cron run every day to remind you of upcoming appointments. it can also generate slick looking printable calendars in postscript and adobe pdf format. microsoft outlook schedules can be easily imported.

cfengine, or the configuration engine is an autonomous agent and a middle to high level policy language and agent for building expert systems to administrate and configure large computer networks. cfengine is designed to be a part of a computer immune system. it is ideal for cluster management and has been adopted for use all over the world in small and huge organizations alike.

cheops-ng is a network management tool for mapping and monitoring your network. it has host/network discovery functionality as well as os detection of hosts. cheops-ng has the ability to probe hosts to see what services they are running. on some services, cheops-ng is actually able to see what program is running for a service and the version number of that program. take a look at the screenshots page for a detailed look at some of the features of cheops-ng.

cheops is an open source network user interface. it is designed to be the network equivalent of a swiss-army knife, unifying your network utilities. cheops does for the network what a file manager does for your filesystem.

cricket is a high performance, extremely flexible system for monitoring trends in time-series data. cricket was expressly developed to help network managers visualize and understand the traffic on their networks, but it can be used all kinds of other jobs, as well.

sasl is the simple authentication and security layer, a method for adding authentication support to connection-based protocols. to use sasl, a protocol includes a command for identifying and authenticating a user to a server and for optionally negotiating protection of subsequent protocol interactions. if its use is negotiated, a security layer is inserted between the protocol and the connection.

devtodo is small command line application for maintaining lists of tasks. it stores tasks hierarchically, with each task given one of five priority levels. data is stored as xml, so various xslt templates can be executed on the xml to convert it into different formats (eg. html).

dialog is a utility to create nice user interfaces to shell scripts, or other scripting languages, such as perl. it is non-graphical (it uses curses) so it can be run in the console or an xterm. there are also graphical xwindows versions mentioned below.

ethereal is used by network professionals around the world for troubleshooting, analysis, software and protocol development, and education. it has all of the standard features you would expect in a protocol analyzer, and several features not seen in any other product. its open source license allows talented experts in the networking community to add enhancements. it runs on all popular computing platforms, including unix, linux, and windows.

fetchmail is a full-featured, robust, well-documented remote-mail retrieval and forwarding utility intended to be used over on-demand tcp/ip links (such as slip or ppp connections). it supports every remote-mail protocol now in use on the internet: pop2, pop3, rpop, apop, kpop, all flavors of imap, etrn, and odmr. it can even support ipv6 and ipsec.

the hoard memory allocator is a fast, scalable, and memory-efficient memory allocator for shared-memory multiprocessors. it runs on a variety of platforms, including linux, solaris, and windows. hoard is a drop-in replacement for malloc(), etc. no change to your source is necessary. just link it in or set just one environment variable (see using hoard for more information). hoard can dramatically improve the performance of multithreaded programs running on multiprocessors. superseded by heaplayers

ipfilter is a software package that can be used to provide network address translation (nat) or firewall services. to use, it can either be used as a loadable kernel module or incorporated into your unix kernel; use as a loadable kernel module where possible is highly recommended. scripts are provided to install and patch system files, as required.

apache tomcat is the servlet container that is used in the official reference implementation for the java servlet and javaserver pages technologies. the java servlet and javaserver pages specifications are developed by sun under the java community process.

jffnms is a network management and monitoring system designed to monitor a ip snmp / syslog / tacacs+ network. it can be used to monitor any standards compilant snmp device, server, router, tcp port or anything you want, if you write a custom poller, we also provide some cisco focused features.

lire is hands down the most versatile log analysis software available today. lire not only keeps you informed about your http, ftp, and mail traffic, it also reports on your firewalls, your print servers, and your dns activity. the ever growing list of lire-supported services clearly outstrips any other software, in large part thanks to the numerous volunteers who have pioneered many new services and features. lire is a total solution for your log analysis needs

maintain is a multi-user, web based management tool for dns and dhcp. it was created using php, perl and mysql. maintain was developed by oregon state university's network engineering to replace a set of command line scripts that edited dns zone files. these scripts were used by many administrators across campus

the multi router traffic grapher (mrtg) is a tool to monitor the traffic load on network-links. mrtg generates html pages containing graphical images which provide a live visual representation of this traffic. check http://www.ee.ethz.ch/stats/mrtg/ for an example. mrtg is based on perl and c and works under unix and windows nt.

ntop is a network traffic probe that shows the network usage, similar to what the popular top unix command does. ntop is based on libpcap and it has been written in a portable way in order to virtually run on every unix platform and on win32 as well.

he openssl project is a collaborative effort to develop a robust, commercial-grade, full-featured, and open source toolkit implementing the secure sockets layer (ssl v2/v3) and transport layer security (tls v1) protocols as well as a full-strength general purpose cryptography library.

open webmail is a webmail system based on the neomail version 1.14 from ernie miller. open webmail is designed to manage very large mail folder files in a memory efficient way. it also provides a range of features to help users migrate smoothly from microsoft outlook to open webmail

otrs is an open source ticket request system (also well known as trouble ticket system) with many features to manage customer telephone calls and e-mails. the system is built to allow your support, sales, pre-sales, billing, internal it, helpdesk, etc. department to react quickly to inbound inquiries. do you receive many e-mails and want to answer them with a team of agents? you're going to love the otrs!

phpadsnew is an open-source ad server, with an integrated banner management interface and tracking system for gathering statistics. with phpadsnew you can easily rotate paid banners and your own in-house advertisements. you can even integrate banners from third party advertising companies.

the pound program is a reverse proxy, load balancer and https front-end for web server(s). pound was developed to enable distributing the load among several web-servers and to allow for a convenient ssl wrapper for those web servers that do not offer it natively. pound is distributed under the gpl - no warranty, it's free to use, copy and give away.

vnc stands for virtual network computing. it is remote control software which allows you to view and interact with one computer (the "server") using a simple program (the "viewer") on another computer anywhere on the internet. the two computers don't even have to be the same type, so for example you can use vnc to view an office linux machine on your windows pc at home. vnc is freely and publicly available and is in widespread active use by millions throughout industry, academia and privately.

rfc (remote filesystem checker) is a set of scripts that aims to help system-administrators run a filesystem-checker (like tripwire, aide and so on...) from a "master-node" to several "slave-nodes" using ssh, scp, sudo and few other common shell commands.

pine® - a program for internet news & email - is a tool for reading, sending, and managing electronic messages. pine was developed by computing & communications at the university of washington. though originally designed for inexperienced email users, pine has evolved to support many advanced features, and an ever-growing number of configuration and personal-preference options. pine is available for unix as well as for personal computers running a microsoft operating system (pc-pine).

rrd is the acronym for round robin database. rrd is a system to store and display time-series data (i.e. network bandwidth, machine-room temperature, server load average). it stores the data in a very compact way that will not expand over time, and it can create beautiful graphs. it can be used via simple shell scripts or as a perl module.

rsync is an open source utility that provides fast incremental file transfer. rsync is freely available under the gnu general public license version 2 and is currently being maintained by wayne davison.

the sdsc secure syslog (also known as high performance syslog) is a project to build a next-generation system audit and logging facility. the goal is to build a system logging facility that addresses these problems with udp "syslog classic":

snmpstat is network-monitoring system, designed to monitor standard network routers, switches and firewalls using snmp. it is not flexible ‘do everything what you want’ system – it has hard coded variables, mib numbers and search rules; on the other hand, it works almost out of the box and do not require many configuration efforts. i recommend using this system in conjunction with some big and flexible (such as saints or commercial system, like proactivenetwork) system if you want to monitor very wide set of parameters. system is unique by it’s compact view, allowing to see all network in a glance, and collects and shows many performance data. it has release quality, except installation procedures which are debugged on freebsd but may require some minimal efforts on linux or solaris.

snort® is an open source network intrusion prevention and detection system utilizing a rule-driven language, which combines the benefits of signature, protocol and anomaly based inspection methods. with millions of downloads to date, snort is the most widely deployed intrusion detection and prevention technology worldwide and has become the de facto standard for the industry.

titan is a collection of programs, each of which either fixes or tightens one or more potential security problems with a particular aspect in the setup or configuration of a unix system. conceived and created by brad powell, it was written in bourne shell, and its simple modular design makes it trivial for anyone who can write a shell script or program to add to it, as well completely understand the internal workings of the system.

webcalng is an online calendar application for your intranet or internet site. you can use webcalng to publish calendars of events, manage group scheduling for your company, or just keep track of important dates in your personal life. ideal for businesses, schools, isp's, clubs, or home users with access to a webserver, webcalng is robust and flexible enough to meet you calendaring needs in any situation!

perl webmail is a cgi/mod_perl application that interfaces with external pop3 and smtp services. it provides all the expected functionality of a mail client, such as read, reply, forward, delete, as well as sending and receiving attachments, storage for mail folders, contacts, and calendar notes.

fping is a ping(1) like program which uses the internet control message protocol (icmp) echo request to determine if a host is up. fping is different from ping in that you can specify any number of hosts on the command line, or specify a file containing the lists of hosts to ping. instead of trying one host until it timeouts or replies, fping will send out a ping packet and move on to the next host in a round-robin fashion. if a host replies, it is noted and removed from the list of hosts to check. if a host does not respond within a certain time limit and/or retry limit it will be considered unreachable. unlike ping, fping is meant to be used in scripts and its output is easy to parse.

the internetnews package (inn) is a complete usenet system. it includes innd, an nntp server, and nnrpd, a newsreading server. inn separates hosts that feed you news from those that have users reading news. inn was originally written by rich salz (grab the usenix paper rich wrote about it here). isc took over development of inn in 1996 after rich was unable to continue supporting it and many variants of the software were forming.

tightvnc is a free remote control software package derived from the popular vnc software. with tightvnc, you can see the desktop of a remote machine and control it with your local mouse and keyboard, just like you would do it sitting in the front of that computer.

Macintosh Software

cvl (concurrent versions librarian) is a version and configuration management tool for macos x. it helps managing versions of various resources (source code, projects, documents). it allows parallel modifications as well as branches. cvl is useful for one and for many users.

bbedit is the leading professional html and text editor for the macintosh. specifically crafted in response to the needs of web authors and software developers, this award-winning product provides an abundance of features for editing, searching, and manipulation of text. bbedit transforms text with high performance.

carrafix was written for mac os x, to improve the poor internet browsing experience and slow download speeds caused by servers softwares on your machine or your network. and to accuratly control your uploads and downloads streams.

geektool is a prefpane (system preferences module) for panther or jaguar to show system logs, unix commands output, or images (i.e. from the internet) on your desktop (or even in front of all windows).